Class DenyAllAnnotationHandler

java.lang.Object

org.apache.shiro.aop.AnnotationHandler

org.apache.shiro.authz.aop.AuthorizingAnnotationHandler

org.apache.shiro.authz.aop.DenyAllAnnotationHandler

public class DenyAllAnnotationHandler
extends AuthorizingAnnotationHandler

This AnnotationHandler denys access from any subject (anonymous or logged in user).

Since:

2.0

Field Summary

Fields inherited from class org.apache.shiro.aop.AnnotationHandler

annotationClass

Constructor Summary

Constructors

Constructor	Description
DenyAllAnnotationHandler()	Default no-argument constructor that ensures this interceptor looks for

Method Summary

Modifier and Type	Method	Description
void	assertAuthorized(Annotation a)	Causes a UnauthorizedException to be thrown if a DenyAll annotation is present.

Methods inherited from class org.apache.shiro.aop.AnnotationHandler

getAnnotationClass, getSubject, setAnnotationClass

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

DenyAllAnnotationHandler

public DenyAllAnnotationHandler()

Default no-argument constructor that ensures this interceptor looks for

RequiresGuest annotations in a method declaration.

Method Details

assertAuthorized

public void assertAuthorized(Annotation a)
                      throws UnauthorizedException

Causes a UnauthorizedException to be thrown if a DenyAll annotation is present.

Specified by:

assertAuthorized in class AuthorizingAnnotationHandler

Parameters:

a - the annotation to check for one or more roles

Throws:

UnauthorizedException - when the DenyAll annotation is present